In association with heise online

06 February 2007, 16:06

Buffer overflow in Blue Coat's WinProxy

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

A specially prepared HTTP CONNECT query can cause a buffer overflow in Blue Coat's WinProxy. According to a security advisory published by service provider iDefense, the proxy then crashes, possibly allowing attackers to inject code .

iDefense does not, however, provide any details about the hole, merely adding that versions 6.1a and 6.0r1c are affected. Blue Coat has already released a corrected version (6.1r1c) for downloading. Users of the software should either upgrade to the current version or disable the HTTP proxy.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit